In 2025, the digital landscape witnessed a surge in cyber-attacks, affecting industries worldwide. From ransomware campaigns to state-sponsored espionage, the year underscored the critical need for robust cybersecurity measures. Here’s a breakdown of the most significant cyber incidents of 2025.
1. Jaguar Land Rover: UK's Most Costly Cyberattack
In August 2025, Jaguar Land Rover (JLR) fell victim to a cyberattack that disrupted operations across its UK factories. The breach led to an estimated £1.9 billion loss, affecting around 5,000 businesses due to JLR’s extensive supply chain. The hacker group “Scattered Lapsus$ Hunters” claimed responsibility, though details of data theft or ransom demands remain unclear.
2. Muji: Ransomware Disrupts Japanese Operations
Japanese retailer Muji halted many of its operations following a ransomware attack on its delivery partner, Askul. The incident disrupted online browsing, shopping, and order history access via the Muji app, raising concerns about potential customer data compromise.
3. Collins Aerospace: Aviation Sector Hit by Ransomware
In September 2025, a ransomware attack on Collins Aerospace’s passenger processing system, MUSE, disrupted operations at major airports, including Heathrow, Brussels, and Berlin. The widespread impact highlighted vulnerabilities in the aviation sector’s digital infrastructure.
4. Manpower: RansomHub Group Exfiltrates 500GB of Data
Staffing giant Manpower confirmed a ransomware attack by the RansomHub group in August 2025, resulting in the exfiltration of 500GB of data. The breach underscored the risks faced by organizations handling sensitive employee and client information.
Key Takeaways
Ransomware Dominance: Over 52% of cyberattacks in 2025 were driven by extortion and ransomware, with attackers primarily seeking financial gain.
Critical Infrastructure Targeted: Nearly half of global ransomware attacks affected sectors vital to national resilience, including manufacturing, healthcare, energy, transportation, and finance.
AI in Cyberattacks: Attackers increasingly leveraged AI tools to enhance the effectiveness of cyberattacks, making them more convincing and automated.
Strengthening Cybersecurity in 2026
As cyber threats continue to evolve, organizations must prioritize cybersecurity to protect sensitive data and maintain operational integrity. Key measures include:
Implementing Multi-Factor Authentication (MFA): MFA can block over 99% of identity-based attacks.
Adopting Zero Trust Architectures: Continuous verification of user and device trustworthiness can mitigate potential threats.
Regular Security Audits: Conducting regular audits helps identify and address vulnerabilities proactively.